📄
REMnux Documentation
  • REMnux: A Linux Toolkit for Malware Analysis
  • Install the Distro
    • Get the Virtual Appliance
    • Install from Scratch
    • Add to an Existing System
    • Run REMnux as a Container
    • Keep the Distro Up to Date
  • Discover the Tools
    • Examine Static Properties
      • General
      • PE Files
      • ELF Files
      • .NET
      • Deobfuscation
    • Statically Analyze Code
      • General
      • Unpacking
      • PE Files
      • Python
      • Scripts
      • Java
      • .NET
      • Flash
      • Android
    • Dynamically Reverse-Engineer Code
      • General
      • Shellcode
      • Scripts
      • ELF Files
    • Perform Memory Forensics
    • Explore Network Interactions
      • Monitoring
      • Connecting
      • Services
    • Investigate System Interactions
    • Analyze Documents
      • General
      • PDF
      • Microsoft Office
      • Email Messages
    • Gather and Analyze Data
    • View or Edit Files
    • General Utilities
  • Run Tools in Containers
    • Docker Images of Malware Analysis Tools
  • Behind the Scenes
    • People
    • Technologies
      • SaltStack Management
      • REMnux Installer
      • State Files Without the REMnux Installer
      • Debian Packages
      • Website and Docs
    • License
  • Tips and More
    • REMnux Configuration Tips
    • REMnux Tool Tips
    • Malware Analysis Training
    • REMnux Website
  • Get Involved
    • Ask and Answer Questions
    • Write About the Tools
    • Add or Update Tools
      • Contribute a Salt State File
      • Contribute a Debian Package
      • Contribute a Dockerfile
    • Implement Enhancements
Powered by GitBook
On this page
  • Sysdig
  • ProcDOT
  • sandfly-processdecloak
  • Unhide
  1. Discover the Tools

Investigate System Interactions

Discover the Tools

PreviousServicesNextAnalyze Documents

Last updated 4 years ago

Sysdig

Track and examine system activities on the local Linux system.

Website: Author: Sysdig Inc: License: Apache License 2.0: State File:

ProcDOT

Visualize and examine the output of Process Monitor.

Website: Author: Christian Wojner: License: Free, custom license: Notes: procdot State File:

sandfly-processdecloak

Find hidden processes on the local Linux system.

Website: Author: Sandfly Security: License: MIT License: State File:

Unhide

Find hidden processes or connections on the local Linux system.

Website: Author: Yago Jesus: License: GNU General Public License (GPL) v3: State File:

https://github.com/draios/sysdig
https://sysdig.com
https://github.com/draios/sysdig/blob/dev/COPYING
remnux.packages.sysdig
https://www.procdot.com
https://twitter.com/Didelphodon
https://cert.at/media/files/downloads/software/procdot/files/license.txt
remnux.packages.procdot
https://github.com/sandflysecurity/sandfly-processdecloak
https://twitter.com/SandflySecurity
https://github.com/sandflysecurity/sandfly-processdecloak/blob/master/LICENSE
remnux.packages.sandfly-processdecloak
http://www.unhide-forensics.info
https://twitter.com/YJesus
https://www.gnu.org/licenses/gpl-3.0.html
remnux.packages.unhide